$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/681de169-d8d1-40da-9051-1bb122bbdbaa.roa File: 681de169-d8d1-40da-9051-1bb122bbdbaa.roa (raw, json) Hash identifier: 12dI7PLpkrcyZqlZhO4LkfXx2auvnEyLQL/lGGitRQk= Subject key identifier: 2B:2C:4E:36:21:DB:D9:8B:FD:06:55:3B:8B:1B:C4:C0:40:16:7E:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F7055B415AB77315F7EB6DD2F8644752D2AAB86 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/681de169-d8d1-40da-9051-1bb122bbdbaa.roa Signing time: Tue 05 Nov 2024 00:00:00 +0000 ROA not before: Tue 05 Nov 2024 00:00:00 +0000 ROA not after: Tue 10 Dec 2024 23:59:59 +0000 asID: 8987 IP address blocks: 32.160.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:70:55:b4:15:ab:77:31:5f:7e:b6:dd:2f:86:44:75:2d:2a:ab:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 5 00:00:00 2024 GMT Not After : Dec 10 23:59:59 2024 GMT Subject: serialNumber=bea36d7e8c1616f230f6117b0dc1f89a3e5e4efa661965eeabbd526f331e6e8f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8c:c9:7a:e2:e6:4f:44:e7:5d:f2:db:02:1f: 76:e4:14:bc:76:f0:60:e8:a4:f3:5d:f0:22:bd:14: e6:56:b3:68:68:04:75:d0:0a:c8:49:68:14:31:e1: 45:6d:a1:da:5f:29:18:2c:d1:63:2f:8f:aa:68:d1: 48:ae:30:d5:12:14:07:05:b2:2a:22:b5:48:3a:20: 20:b9:91:57:5b:78:81:f2:7b:1b:7a:84:d7:71:e7: c9:4c:50:7e:2b:dd:6a:4c:d9:ea:85:48:87:a4:07: 37:d2:0f:6a:b4:7d:c1:23:e5:2b:9d:58:12:5c:39: 92:19:7b:36:64:92:25:c5:b5:fb:2c:76:49:57:2f: d8:aa:af:74:a5:97:4c:a4:52:ae:c6:24:1d:7e:2a: 3b:dc:d6:f2:4c:c4:68:3c:6d:5d:4b:68:ec:cd:14: c5:16:bd:a8:8f:08:66:ea:76:f3:e1:2d:47:e0:2a: 48:50:c4:ce:cd:86:24:e5:72:ba:a8:e5:f3:a3:61: 42:82:88:b7:47:d6:13:ee:26:9d:9f:db:77:0a:07: 90:55:e5:ac:ca:30:c0:9e:8d:34:84:ce:07:a8:63: 4f:80:7a:f1:90:cf:a3:c4:e1:42:48:f6:cc:cc:20: 60:b3:ab:51:a2:bf:d1:91:22:19:fc:39:10:56:2b: 99:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:2C:4E:36:21:DB:D9:8B:FD:06:55:3B:8B:1B:C4:C0:40:16:7E:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/681de169-d8d1-40da-9051-1bb122bbdbaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.160.0.0/14 Signature Algorithm: sha256WithRSAEncryption 79:cf:fb:3f:f3:18:27:1f:d9:92:47:0e:bc:96:e5:dc:b8:e1: c2:34:39:42:6e:75:2e:46:ae:bd:67:c3:44:06:f3:d7:22:41: d6:18:4e:bf:51:51:8b:01:d4:ab:5a:bd:15:95:35:e9:7d:74: 58:ec:d5:6f:35:f4:0e:74:7d:f1:87:48:c8:cf:12:c5:c1:68: 5e:85:da:26:eb:a8:44:a9:19:10:c9:71:4b:5a:57:dc:2d:4d: ad:70:76:a2:72:48:63:1b:6b:bd:96:1f:3b:e7:8c:88:4e:1c: d2:0c:4c:f7:65:37:26:29:f3:9e:1c:51:fc:29:ba:2d:7f:46: 6b:1c:59:40:aa:cc:8a:bd:fd:73:94:97:7e:6e:e7:9a:73:f3: 43:a1:9d:4d:87:13:eb:50:f4:30:80:db:ea:37:1f:38:7d:66: f6:ed:3a:23:1d:6d:14:ce:e0:cf:bf:99:0f:f9:8c:79:a6:de: e9:2d:b6:2b:a1:9b:91:1d:a9:93:a6:de:df:ad:a8:65:8c:94: 55:a9:4f:18:53:70:ae:ea:56:23:6b:c3:76:58:f2:c2:b1:14: a0:76:ea:61:c0:b1:55:b2:4f:b3:8e:77:f4:a8:46:0d:71:ba: f6:8a:b4:de:16:ba:e7:0a:55:33:53:73:a1:a1:1e:3d:40:0c: c1:06:fa:f6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUb3BVtBWrdzFffrbdL4ZEdS0qq4YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA1MDAwMDAwWhcNMjQxMjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZWEzNmQ3ZThjMTYxNmYyMzBmNjExN2IwZGMxZjg5YTNl NWU0ZWZhNjYxOTY1ZWVhYmJkNTI2ZjMzMWU2ZThmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQjMl64uZPROdd8tsCH3bkFLx28GDopPNd8CK9FOZWs2ho BHXQCshJaBQx4UVtodpfKRgs0WMvj6po0UiuMNUSFAcFsioitUg6ICC5kVdbeIHy ext6hNdx58lMUH4r3WpM2eqFSIekBzfSD2q0fcEj5SudWBJcOZIZezZkkiXFtfss dklXL9iqr3Sll0ykUq7GJB1+Kjvc1vJMxGg8bV1LaOzNFMUWvaiPCGbqdvPhLUfg KkhQxM7NhiTlcrqo5fOjYUKCiLdH1hPuJp2f23cKB5BV5azKMMCejTSEzgeoY0+A evGQz6PE4UJI9szMIGCzq1Giv9GRIhn8ORBWK5mrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKyxONiHb2Yv9BlU7ixvEwEAWfl0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY4MWRlMTY5LWQ4ZDEtNDBkYS05MDUxLTFiYjEyMmJiZGJhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIgoDANBgkqhkiG9w0BAQsFAAOCAQEAec/7P/MYJx/ZkkcOvJbl3LjhwjQ5 Qm51LkauvWfDRAbz1yJB1hhOv1FRiwHUq1q9FZU16X10WOzVbzX0DnR98YdIyM8S xcFoXoXaJuuoRKkZEMlxS1pX3C1NrXB2onJIYxtrvZYfO+eMiE4c0gxM92U3Jinz nhxR/Cm6LX9GaxxZQKrMir39c5SXfm7nmnPzQ6GdTYcT61D0MIDb6jcfOH1m9u06 Ix1tFM7gz7+ZD/mMeabe6S22K6GbkR2pk6be362oZYyUValPGFNwrupWI2vDdljy wrEUoHbqYcCxVbJPs4539KhGDXG69oq03ha65wpVM1NzoaEePUAMwQb69g== -----END CERTIFICATE-----Generated at Fri Nov 22 04:02:41 2024 by rpki-client on console-ams.rpki-client.org